workflow-automation
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill defines automation scripts (Shell, Makefile, npm) that execute system commands for building, testing, and deploying applications. These include standard operations like file removal of build artifacts (
rm -rf dist) and SSH-based remote deployments. - [EXTERNAL_DOWNLOADS]: The workflow involves downloading dependencies via standard package managers (
npm install) and using official GitHub Actions (actions/checkout,actions/setup-node,codecov/codecov-action). These are standard practices for development environments. - [SAFE]: No malicious patterns, obfuscation, or data exfiltration attempts were detected. The skill's behavior aligns with its stated purpose of workflow automation and includes explicit constraints against hardcoded secrets.
Audit Metadata